Cisco 3.3 User Manual

Appendix F RDBMS Synchronization Import Definitions

Action Codes

F-24

User Guide for Cisco Secure ACS for Windows Server

78-16592-01

176

ADD_IOS_
COMMAND_ARG

UN|GN,
VN, V1, V2

Specifies a set of command-line arguments that are
either permitted or denied for the Cisco IOS
command contained in VN. The command must have
already been added via Action 174:

GN = "Group 1"

VN = "telnet"

V1 = "permit"

V2 = "10.1.1.2"

or

UN = "fred"

VN = "show"

V1 = "deny"

V2 = "run"

The first example will allow the telnet command with
argument 10.1.1.2 to be used by any user in Group 1.

The second example ensures that user fred cannot
issue the Cisco IOS command show run.

177

REMOVE_IOS_
COMMAND_ARG

UN|GN,
VN, V2

Removes the permit or deny entry for the given
Cisco IOS command argument:

GN = "Group 1"

VN = "telnet"

V2 = "10.1.1.1"

or

UN = "fred"

VN = "show"

V2 = "run"

Table F-5

Action Codes for Modifying TACACS+ and RADIUS Group and User Settings (continued)

Action
Code

Name

Required

Description